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the official fees at the U.S. Patent and Trademark Office 
(USPTO) . The Applicants may elect to amend Claims 5-7, 10 and 
16-17 to make them again multiply dependent or to add additional 
claims to this application to provide coverage similar to, 
broader than, or narrower than the present claims at any time 
during the pendency of the above- identified U.S. application. 



Respectfully submitted, 




Reg. No. 28,145 
Attorney for Applicant 
LADAS & PARRY 

5670 Wilshire Boulevard #2100 
Los Angeles, California 90036 
(323) 934-2300 
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X. ,«..„ded, ccputin. apparatus cmpri^ing. counted on a„ 
asse-^ly. n«in processing .eans. land, ™aln „en.ory .neans ^ 
Z,J2^. each .eing connected tor con^un.cat.on w.th one 

or „re other co,^onents on the ^^^^^^ ^„„„„^ 

[characterised by further comprising a trusted de 
the asse*ly and being connected (or con^nications with one or 
«:e o her L^onents on the asse^ly, > the trusted device being 
Tanged to ac^ire a true value of an integrity metric of the 
coinputing apparatus. 

4. ,M,endea, Co:^uting apparatus according to claim 3 wherein 

the [platform] ^^mmiinS-^m^^ """^"-^ " " 
inltictions to be the first instructions executed after release 



^ from reset. 

lU 



S. ,M,ended, Computing apparatus according to claim 3 [or 
,,^m 41 Wherein the trusted device is arranged to transfer the 
irtlc't^ot to the main processing means in response to memory 
read signals from the main processing means. 

,«„ended, Co^-^^"^ ^^^^^"^ ^^^"^'"V" 'Tomprlsfs 
Lil 1 to SliUinUL. wherein the trusted device comprises 

d : : meTry ll^.^ arranged to monitor [the, . data bus 

and store in the device memory means a flag in^e 
event the first memory read signals generated by the m 
processing means after the computing apparatus is released 
reset are addressed to the trusted device. 
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7. (Amended) Computing apparatus according to [any one of 
claims 1 to 61 claim 1 . wherein the trusted device has stored in 
device memory means at least one of: 

a unique identity of the trusted device; 

an authenticated integrity metric generated by a trusted 
party; and 

a secret. 

10. (Amended) Computing apparatus according to claim 8 [or 
claim 9] , wherein the trusted device has stored in device memory 
means an authenticated integrity metric generated by a trusted 
party and includes a encryption function, the trusted device 
being arranged to generate a response to a received challenge, 
the response comprising an acquired integrity metric and the 
authenticated integrity metric, both signed by the encryption 
function using the private asymmetric encryption key. 

Please cancel claim 11 without prejudice. 



Appendix A 



(VERSION WITH MAKKIN6S TO SHOW CHANGES M2UDE) 

Page 3 of 4 

12. (Amended) A method of operating a system comprising a 
trusted computing apparatus and a user, the trusted computing 
apparatus incorporating a trusted device being arranged to 
acquire the true value of an integrity metric of the trusted 
computing apparatus, the method comprising the steps of: 

the trusted device acquiring the true value of the 
integrity metric of the trusted computing apparatus; 

the user generating a challenge for the trusted computing 
apparatus to prove its integrity and submitting the challenge to 
the trusted computing apparatus; 

the trusted computing apparatus receiving the challenge, 
and the trusted device generating a response including the 
integrity metric and returning the response to the user; and 

the user receiving the response, extracting the integrity 
metric from the response and comparing the integrity metric with 
an authenticated metric for the trusted computing apparatus that 
had been generated by a trusted party. 

16. (Amended) A method of establishing a communications 
channel in a system between trusted computing apparatus and 
remote computing apparatus, the method including the step of the 
remote computing apparatus verifying the integrity of the 
trusted computing apparatus using the method according to [any 
one of claims 12 to 151 claim 12 , and maintaining the 
communications channel for further transactions in the event the 
integrity of the trusted computing apparatus is successfully 
verified by the remote computing apparatus. 
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n (Mended) A method of veritying that trusted co-nput.ng 
apparatus is trustworthy for use by a user for P"«=-;«J 
particular application, the method includrng the step of the 
user verifying the integrity of the trusted corc^utrng appara us 
using the method according to [any one of claims!^ 12 ( o 
151 and the user using the trusted computing apparatus to 
process the particular application in the event the integrity of 
the trusted computing apparatus is successfully verified by the 
remote computing apparatus. 



Please cancel claims 18-21 without prejudice. 



